RFR: 8258915: Temporary buffer cleanup [v4]
Valerie Peng
valeriep at openjdk.java.net
Sat Jan 23 05:12:42 UTC 2021
On Fri, 22 Jan 2021 21:28:53 GMT, Weijun Wang <weijun at openjdk.org> wrote:
>> Clean up temporary byte array, char array, and keyspec around keys and passwords.
>>
>> No new regression test.
>
> Weijun Wang has updated the pull request incrementally with one additional commit since the last revision:
>
> keyfactory operations on own keyspec
src/java.base/share/classes/com/sun/crypto/provider/DHPrivateKey.java line 116:
> 114: encode();
> 115: } catch (IOException e) {
> 116: throw new ProviderException("Cannot produce ASN.1 encoding", e);
Supposedly the IOException should never happen? Otherwise the Arrays.fill(...) call may not happen.
-------------
PR: https://git.openjdk.java.net/jdk/pull/2070
More information about the security-dev
mailing list